On Thu, Jun 27, 2024 at 10:45:09AM +, Gino Ferguson via Postfix-users wrote:
> I have two questions regarding multi instance management.
>
> 1. is there a way to batch migrate multi instances from serverA to
> serverB? We are planning to replace our servers and I'd spare as much
> manual work
> BTW: where to get the cert from to generate the 2 1 1 enty for DNS ?
-
https://list.sys4.de/hyperkitty/list/dane-us...@list.sys4.de/message/ZTM3XQMI3XP7PWMWJTXBYDPVU4UENE24/
- https://dnssec-stats.ant.isi.edu/~viktor/x3hosts.html
--
Viktor.
On Thu, Jun 27, 2024 at 02:13:25PM +0200, Gerd Hoerst via Postfix-users wrote:
> Thanx ! Works
Nope, sorry, you've rather failed to read and understand those docs.
> Am 27.06.24 um 13:29 schrieb Viktor Dukhovni via Postfix-users:
> > > BTW: where to get the cert from to gen
On Tue, Jul 02, 2024 at 05:15:28PM -0400, John R. Levine via Postfix-users
wrote:
> I've put a few dummy user entries in /etc/sasldb2 and set up the saslauthd
> service, which for now I'm running in debug mode. When I try sending a test
> query the daemon gets it and replies:
Have you posted "p
On Tue, Jul 02, 2024 at 11:24:53PM -0400, John Levine via Postfix-users wrote:
> >Have you posted "postconf -nf" and "postconf -Mf" output (with as-is
> >whitespace, including line-breaks)?
>
> I will, see below.
Thanks, generally best to do that early when delving into configuration
conundrums.
On Wed, Jul 03, 2024 at 01:43:23PM +0200, Patrick Ben Koetter via Postfix-users
wrote:
> > If not, or, in any case, you might specify
> >
> > saslauthd_path: /var/run/saslauthd/mux
> >
> > in the "smtpd.conf" file, once it is in the correct (for Debian)
> > directory. Note that this settin
On Wed, Jul 03, 2024 at 09:48:06PM -0400, John Levine via Postfix-users wrote:
> * Debian moved the sasl configuration file to a nonstandard place
> /etc/postfix/sasl/smtpd.conf
> Dunno how I would have figured that out if someone here hadn't told me.
This is unfortunate, and I rather hope that S
On Thu, Jun 27, 2024 at 08:32:08PM +0200, Gerd Hoerst via Postfix-users wrote:
> I had the setup with R3 running for years w/o problems but now i have also
> R11/12/13/14 as backup entries
I hope that also includes R10. It is simplest/best to force an
expedited renewal, then you'll get one of t
On Thu, Jul 04, 2024 at 05:01:41PM -, John Levine via Postfix-users wrote:
> OK, I'll invent a user. Perhaps if we can get Scott to undo the control file
> move he can add a sasl user at the same time.
Note, "undo" isn't quite what I'm suggesting, rather I hope Debian will
replace the hardco
On Fri, Jul 05, 2024 at 08:42:31AM +0100, Gilgongo via Postfix-users wrote:
> # For OpenDKIM signing
> 127.0.0.1:10027inetn-n--smtpd
> ... configs...
> -o smtpd_milters=inet:127.0.0.1:8891
>
> So I assume DKIM should come last. But the logs imply the spam/v
On Fri, Jul 05, 2024 at 08:45:49AM -0400, Scott Kitterman via Postfix-users
wrote:
> > Note, "undo" isn't quite what I'm suggesting, rather I hope Debian will
> > replace the hardcoded preëmpt of the Cyrus SASL configuration directory,
> > by a default value of $cyrus_sasl_config_path, that match
On Sun, Jul 07, 2024 at 01:50:19PM +0200, John Fawcett via Postfix-users wrote:
> Ok, I had suspected that it might be a valid alternative. However, the
> reason I mentioned it was because my configuration without $ seems to be
> working fine:
>
> submission inet n - n - -
On Sun, Jul 07, 2024 at 06:02:00PM -0400, Robert Fuhrer via Postfix-users wrote:
> Oh, thanks; I should’ve realized I could just add another map to
> local_recipient_maps. D’oh!
You're conflating many rather distinct aspects of the delivery stack.
> My Dovecot setup uses MySQL to identify users
On Mon, Jul 08, 2024 at 08:39:54AM +0200, Patrick Ben Koetter via Postfix-users
wrote:
> > I want to setup SMTP authentication in such a way that the user
> > should first be looked locally (/etc/passwd) and then in AD. Is it
> > possible to do so? I was able to configure AD auth via sasl (cyrus)
On Mon, Jul 08, 2024 at 08:34:57PM -0400, Robert Fuhrer via Postfix-users wrote:
> Hi John,
>
> I've already got that dovecot LDA config line in master.cf (it's how
> delivery for the one login user is set up), though without the "-f"
> flag. I guess the LDA is pulling the "from" address from the
[ No need to "Cc:" me in replies, just reply to the list. It is
unfortunate that mailman moves my address from "From:" to "Reply-To:",
that's very much not my intent. ]
On Tue, Jul 09, 2024 at 11:50:40AM +1000, hkhk_exact10 wrote:
> > with much additional configuration needed for pam_ldap.
>
On Mon, Jul 08, 2024 at 10:44:46PM -0700, Simon Thorpe (PST) via Postfix-users
wrote:
> All emails to {alias}@mydomain.com sent onto any of a list of other
> domains, i.e. {alias}@domain1.com, {alias}@domain2.com, etc.
This lists a condition, but no action.
> If I can do this without code and p
On Tue, Jul 09, 2024 at 12:54:38PM +0100, Gilgongo via Postfix-users wrote:
> I've set up our mail server (with some help from this list, for which much
> thanks) to scan sasl-auth senders for spam and viruses with Amavis.
I am puzzled as to why you are linking SASL with content inspection.
You c
On Wed, Jul 10, 2024 at 12:19:08PM +1000, Gary R. Schmidt via Postfix-users
wrote:
> On 10/07/2024 10:33, Phil Biggs via Postfix-users wrote:
> > Wednesday, July 10, 2024, 8:59:57 AM, Jeff Pang via Postfix-users wrote:
> >
> > > Hello experts,
> >
> > > One of my customers in HK want to send b
On Tue, Jul 09, 2024 at 06:17:26PM +0100, Gilgongo wrote:
> > > My first thought was to start by firewalling off mail ports on the local
> > > machine to only allow processes owned by root or postfix.
> >
> > Why? Just inspect the messages they submit, SASL is not required.
>
> Apologies - perha
On Wed, Jul 10, 2024 at 10:29:37AM +0200, Fourhundred Thecat via Postfix-users
wrote:
> I sent an email with one to: and one cc:
> in the logs, I see
>
> host said: 452 4.5.3 Too many recipients
To get help, post the logs to this list (start again with the question
this time including the log
On Wed, Jul 10, 2024 at 11:06:06AM +0200, Fourhundred Thecat via Postfix-users
wrote:
> I sent an email with one "to" and one "cc", and in the logs, I see:
>
> host said: 452 4.5.3 Too many recipients
>
> but the next line says:
>
> Queued mail for delivery
>
>
> 2024-07-10 10:20:56 pos
On Wed, Jul 10, 2024 at 07:44:05PM +0200, Steffen Nurpmeso via Postfix-users
wrote:
> Well, i do not know, .. but i have
>
> message_size_limit = 50
Wow, that's rather restrictive in age when disk capacities are starting
to be measured in 10s of terabytes, while the majority of mail serve
On Thu, Jul 11, 2024 at 06:42:26AM +, Francis Augusto Medeiros-Logeay via
Postfix-users wrote:
> I was wondering - is it possible to bounce e-mails for non-existent
> addresses when using a catchall?
This question makes no sense. If you want to reject mail to (all or
most) addresses that do
On Fri, Jul 12, 2024 at 01:54:38AM +0200, Steffen Nurpmeso wrote:
> |> I have a problem in that I would like several senders to be able
> |> to send larger messages.
> |
> |You may as well advertise the largest supported size, it is better
> |better than advertising just "SIZE", because clien
On Thu, Jul 11, 2024 at 05:53:04PM +0100, Adam Weremczuk via Postfix-users
wrote:
> I have a highly isolated host (e.g. most outgoing traffic blocked, no DNS)
> but I would like to use Postfix on that host to send certain emails to a
> single address exam...@example.com.
>
> I've already allowed
On Fri, Jul 12, 2024 at 12:42:28AM +0200, John Fawcett via Postfix-users wrote:
> On 12/07/2024 00:14, John R. Levine via Postfix-users wrote:
> > Last month I asked for advice on limiting specific senders
> > to specific recipients, and Wietse offered this:
> >
> > /etc/postfix/main.cf:
> >
On Fri, Jul 12, 2024 at 10:00:39AM +0800, Jeff Pang via Postfix-users wrote:
> > But, another option, which I'd prefer whenever possible, is to route the
> > messages via a relay host that does have DNS.
> >
> > main.cf:
> > # Punt external mail to a relay that can do DNS
> >
On Sat, Jul 13, 2024 at 12:01:38AM +0200, John Fawcett via Postfix-users wrote:
> I checked https://www.postfix.org/postconf.5.html and I can see:
>
> smtpd_sasl_type (default: cyrus)
> The SASL plug-in type that the Postfix SMTP server should use for
> authentication. The available types are
On Fri, Jul 12, 2024 at 07:10:41PM +0200, Steffen Nurpmeso wrote:
> postfix-users@postfix.org wrote in
> :
> |On Fri, Jul 12, 2024 at 01:54:38AM +0200, Steffen Nurpmeso wrote:
> ...
> |No, there is no scenario in which no limit is better than an explicit
> |maximum.
> |
> |>|> Letting aside
On Sat, Jul 13, 2024 at 02:49:33AM +0200, John Fawcett via Postfix-users wrote:
> I know that I'm not impartial as a Postfix fan for many years, but in
> my opinion it's undeniable that the Postfix project (Wietse, you and
> other contributors) have placed an importance on documentation that is
>
On Tue, Jul 16, 2024 at 11:59:55AM -0400, Scott Kitterman via Postfix-users
wrote:
> > Note, "undo" isn't quite what I'm suggesting, rather I hope Debian will
> > replace the hardcoded preëmpt of the Cyrus SASL configuration directory,
> > by a default value of $cyrus_sasl_config_path, that match
On Wed, Jul 17, 2024 at 09:01:58PM -0700, Kenneth Porter via Postfix-users
wrote:
> I'm reading through this document and don't see recipient_delimiter
> mentioned. Where is it applied to the incoming addresses? (It's otherwise a
> great, detailed document. I just don't see this one feature discu
On Thu, Jul 18, 2024 at 08:20:04AM -0700, Kenneth Porter via Postfix-users
wrote:
> On 7/18/2024 7:53 AM, Wietse Venema via Postfix-users wrote:
> > - Disable the recipient_delimiter feature, and use PCRE tables for
> >domain-dependent email address rewriting and routing.
>
> PCRE sounds prom
On Sun, Jul 28, 2024 at 09:45:45AM +, Laura Smith via Postfix-users wrote:
> The reporting program is postfix/smtpd
>
> postconf output:
>
> smtp inet n - y - - smtpd
It runs in a chroot jail, where likely /etc/resolv.conf or related
files are different
On Sun, Jul 28, 2024 at 11:00:30AM +, Laura Smith via Postfix-users wrote:
> > On Sun, Jul 28, 2024 at 09:45:45AM +, Laura Smith via Postfix-users
> > wrote:
> >
> > > The reporting program is postfix/smtpd
> > >
> > > postconf output:
> > >
> > > smtp inet n - y - - smtpd
> >
> >
>
On Sun, Jul 28, 2024 at 09:37:19PM +1000, Viktor Dukhovni via Postfix-users
wrote:
> Yes, but the chrooted smtpd(8) process reads:
>
> /var/spool/postfix/etc/resolv.conf
>
> rather than /etc/resolv.conf, because that's what chroot jails do.
>
And the same appl
On Sun, Jul 28, 2024 at 04:59:48PM -0400, Christophe Kalt via Postfix-users
wrote:
> Finally, what are the various queues?
> https://www.postfix.org/QSHAPE_README.html mentions maildrop, hold,
> incoming, active & deferred,
Which are where you might find a given message.
> but I also see bounce
On Mon, Jul 29, 2024 at 09:28:51AM +0200, Ralf Hildebrandt via Postfix-users
wrote:
> Ever so often I'm using transport entries to bounce typo domains or
> "noreply" addresses prior to the expiration after
> $maximum_queue_lifetime.
>
> Something like:
> noreplytoMMS.telekom.de error:5.1.2 Doe
On Mon, Jul 29, 2024 at 09:40:45AM +0200, Ralf Hildebrandt via Postfix-users
wrote:
> * Viktor Dukhovni via Postfix-users :
>
> > > Is this intentional or a side-effect?
> >
> > I'm guessing you have "smtpd_reject_unlisted_sender = yes"?
>
&
On Mon, Jul 29, 2024 at 05:45:51PM +1000, Viktor Dukhovni via Postfix-users
wrote:
> On Mon, Jul 29, 2024 at 09:40:45AM +0200, Ralf Hildebrandt via Postfix-users
> wrote:
> > * Viktor Dukhovni via Postfix-users :
> >
> > > > Is this intentional or a side-effect?
On Mon, Jul 29, 2024 at 12:16:20PM +0200, export--- via Postfix-users wrote:
> Sent email returns with the error
>
> #5.7.0 Must issue a STARTTLS command first (in reply to MAIL FROM command)
>
> How can I correct that error?
> Thank you for help
Since you're asking on the posfix-users list, p
On Mon, Jul 29, 2024 at 08:27:37PM +0900, Walt E via Postfix-users wrote:
>Hi victor
>I guess outbound TLS support is this option?
>smtp_tls_security_level = may
Oops, yes, you're right of course, I am embarrassed, but happy to be corrected.
--
Viktor.
___
On Mon, Jul 29, 2024 at 08:21:40AM -0400, Wietse Venema via Postfix-users wrote:
> export--- via Postfix-users:
> > Sent email returns with the error
> >
> > #5.7.0 Must issue a STARTTLS command first (in reply to MAIL FROM command)
> >
> > How can I correct that error?
> > Thank you for help
>
On Mon, Jul 29, 2024 at 03:48:42PM +0200, Jaroslaw Rafa via Postfix-users wrote:
> Isn't there any possibility to use a dedicated transport to such a broken
> server, with settings that force use of TLS to deliver the message
> regardless of target server not advertising it?
No, because the serve
On Mon, Jul 29, 2024 at 10:21:22AM -0400, Wietse Venema via Postfix-users wrote:
> Viktor Dukhovni via Postfix-users:
> > On Mon, Jul 29, 2024 at 03:48:42PM +0200, Jaroslaw Rafa via Postfix-users
> > wrote:
> >
> > > Isn't there any possibility to use a d
On Tue, Jul 30, 2024 at 12:23:43PM +1000, Phil Steel-Wilson via Postfix-users
wrote:
> because it has received a number of bounces indicating that there may
> be a problem delivering messages top...@philfixit.info.
Trying "sendmail -bv top...@philfixit.info" to verifying your address, I see:
On
On Tue, Jul 30, 2024 at 01:14:15PM +1000, Phil Steel-Wilson via Postfix-users
wrote:
> Copy and paste from the email gave top...@philfixit.info however the email
> address is actually p...@philfixit.info and i can send and receive mail to
> google . . . Cheers Phil
Eliding essential spaces from
On Tue, Jul 30, 2024 at 10:23:28AM +0100, Gilgongo via Postfix-users wrote:
> What do others do with DMARC? I'm inclined to just gradually turn up the SA
> scores on SPF/DKIM failures instead, if only because
> Mail::SpamAssassin::Plugin::DMARC isn't included in SA by default - and
> presumably f
On Wed, Jul 31, 2024 at 10:36:00PM +0200, John Fawcett via Postfix-users wrote:
> My first thought was to follow RFC7505 and define null mx records for my
> example.com that has no email accounts, so no server will bother to try and
> deliver email to it.
>
> https://www.rfc-editor.org/rfc/rfc750
On Thu, Aug 01, 2024 at 12:54:16AM +0300, Dāvis Mosāns via Postfix-users wrote:
> and in master.cf I have:
> submissions inet n - n - - smtpd
>-o syslog_name=postfix/submissions
>-o smtpd_tls_wrappermode=yes
>-o smtpd_tls_security_level=encrypt
>-
On Wed, Jul 31, 2024 at 01:10:46PM -0400, Wietse Venema via Postfix-users wrote:
> > > Now I tried to redirect mails from my private address sent to anybody
> > > at charite.de to be redirected to someone else in the organisation,
> > > like this:
> > >
> > > rxlf.hildebra...@gmail.com REDIRECT t
On Thu, Aug 01, 2024 at 07:32:52AM +, Laura Smith via Postfix-users wrote:
> I think the reality is that we are in 2024, and the chances of a human
> reading postmaster@ are about the same as a human reading abuse@
> i.e. nil.
This may be true for the too-big-to-fail mail providers, but
On Sat, Aug 03, 2024 at 10:54:46AM -0400, John Thorvald Wodder II via
Postfix-users wrote:
> > maybe this header_checks example works :
> > /^(To|From|Cc|Reply-To):.*@stupidspammers\.example/ DISCARD
> > postmap /etc/postfix/header_checks
> > and in main.cf :
> > header_checks = regexp:/etc/p
On Sat, Aug 03, 2024 at 04:23:33PM +, Arnie T via Postfix-users wrote:
> postscreen_dnsbl_reply_map =
> texthash:/etc/postfix/postscreen_dnsbl_reply_map
> >>> rbl_reply_maps =
> ${stress?lmdb:/etc/postfix/smtpd_dnsbl_reply_maps}
> default_rbl_reply = $rb
On Sat, Aug 03, 2024 at 04:54:57PM +, Arnie T via Postfix-users wrote:
> > > It looks like it's using the "default_rbl_reply" instead of the match
> > > from "postscreen_dnsbl_reply_map".
> >
> > That parameter is not applicable for connections passed to smtpd(8).
>
> I'm not clear on that.
On Mon, Aug 05, 2024 at 09:00:48PM -0400, Joey J via Postfix-users wrote:
> I'm getting rejections showing:
> reject: RCPT from unknown[96.92.246.116]: 450 4.7.25 Client host rejected:
> cannot find your hostname
https://www.postfix.org/DEBUG_README.html#mail
- "postconf -nf" output (wit
On Tue, Aug 06, 2024 at 09:05:20PM +0300, Dāvis Mosāns via Postfix-users wrote:
> That's the issue, transport map I have:
> transport_maps = lmdb:/etc/postfix/transport
> with:
> * smtp:internal.example.org
Wildcard transport overrides are best avoided.
> It's used for both cases.
Which is not
On Tue, Aug 06, 2024 at 05:45:59PM -0400, Wietse Venema via Postfix-users wrote:
> Laura Smith via Postfix-users:
> [...]
> > Here's what I've done:
> >
> > 1/ Create header_checks file with the following:
> > /^Received:/ IGNORE
> > /^User-Agent:/ IGNORE
> > /^X-Mailer:/ IGNORE
> > /^X-User-Agent
On Wed, Aug 07, 2024 at 08:18:24AM +0200, Bastian Blank via Postfix-users wrote:
> On Wed, Aug 07, 2024 at 12:46:41PM +1000, Viktor Dukhovni via Postfix-users
> wrote:
> > Indeed, but I would also recommend to not entirely delete the Received
> > headers, rather censor just
On Wed, Aug 07, 2024 at 09:29:35AM +, Laura Smith via Postfix-users wrote:
> > You may want to check that with
> >
> > postmulti -i postfix-myrelay -x postconf -P header_checks
> >
>
> I get:
>
> postconf: warning: unmatched request: "header_checks"
Try:
postmulti -i postfix-myrelay
On Wed, Aug 07, 2024 at 10:43:47AM +, Laura Smith via Postfix-users wrote:
> > Try:
> >
> > postmulti -i postfix-myrelay -x postconf -P '*/unix/header_checks'
>
> Will try that and let you know.
It won't take long. :-)
> Reading the docs, maybe I'm just over-complicating things.
>
> Perha
On Thu, Aug 08, 2024 at 12:26:11PM +, Laura Smith via Postfix-users wrote:
> I am open to the concept of anonymising but I don't know how since e.g. I do
> not have readily defined subnets because the user-base includes roaming users.
>
> So clearly both the host name and the IP would need t
On Fri, Aug 09, 2024 at 09:22:59AM +0300, Eero Volotinen via Postfix-users
wrote:
> How do I rewrite relayed (smtp in) and local from field?
https://www.postfix.org/ADDRESS_REWRIGING_README.html
> Tried various instructions, but cannot get both working at same time.
That's not a particular
On Fri, Aug 09, 2024 at 10:01:11AM +0300, Eero Volotinen wrote:
> Lets say that this looks complex.
>
> This works: smtp_generic_maps = hash:/etc/postfix/generic to rewrite smtp
> from:
>
> and file contains:
> /.*/
A "hash" table is not do regular-expression matching. Perhaps you want
one of:
On Sun, Aug 11, 2024 at 08:29:22AM +, Laura Smith via Postfix-users wrote:
> Why doesn't dovecot_destination_recipient_limit get a mention in the
> postconf docs (https://www.postfix.org/postconf.5.html)
Because the parameter is synthesised, based on the presence of a
transport named "dovecot
On Sun, Aug 11, 2024 at 01:33:30PM +0200, Benny Pedersen via Postfix-users
wrote:
> Laura Smith via Postfix-users skrev den 2024-08-11 10:29:
>
> > Why doesn't dovecot_destination_recipient_limit get a mention in the
> > postconf docs (https://www.postfix.org/postconf.5.html)
>
> you have added
On Sun, Aug 11, 2024 at 03:59:16PM +0100, Gilgongo via Postfix-users wrote:
> I have the following in my postscreen_dnsbl_sites:
>
> wl.mailspike.net=127.0.0.[19;20]*-2
>
> Yet my logs show entries for .17 and .18 as well, eg:
>
> Aug 11 14:14:10 alice postfix/dnsblog[3952116]: addr 211.15
On Thu, Aug 15, 2024 at 05:15:01PM -0400, Wietse Venema via Postfix-users wrote:
> Etienne Gladu via Postfix-users:
> > In short, I want postfix to change the recipient of all email going through
> > port 7025, 7026, etc
> > In exemple : email came from port 7025, then redirect/change recipient to
On Sat, Aug 17, 2024 at 11:05:43AM +0800, Wesley via Postfix-users wrote:
> That’s great. I will look into SNI for postfix.
Sure, but do first consider a single certificate with multiple SANs, if
at all possible. Particulary for simple use cases, like the one you're
looking at: "smtp.example.org
On Thu, Aug 22, 2024 at 12:32:31PM +0200, Tomas Habarta via Postfix-users wrote:
> As the stray CR/LF replacement is implemented in cleanup server, I
> assume that the corresponding queue file is already modified
Correct, the replacement takes place as part of writing the queue file.
Of course y
On Thu, Aug 22, 2024 at 08:44:33PM +0800, horizon--- via Postfix-users wrote:
> I am sorry that I have asked this question on dovecot list, but I got no
> answer there. So I am forwarding this to postfix list hoping I can get your
> help.
Is it *authentication* you want to disable, or the right t
On Fri, Aug 23, 2024 at 01:20:57PM +0200, Tomas Habarta via Postfix-users wrote:
>
> Looks like either something happens on the way or directly on the
> downstream Sendmail... Do not know at what stage this check takes
> place in Sendmail message processing, but there surely are some
> milters an
On Sun, Aug 25, 2024 at 06:09:23PM +, Jyan Ren via Postfix-users wrote:
> I'm deploying postfix on my vps, but my ISP has blocked outbound
> traffic on port 25. To bypass this restriction, I am considering using
> a VPN based on the socks5 protocol to forward my SMTP traffic. I would
> like to
On Mon, Aug 26, 2024 at 04:59:47PM +, Ren Jyan via Postfix-users wrote:
> I still want to try using a SOCKS5 proxy.
I can try, but I personally prefer to not provide the kind of help which
I balance I consider to be harming the real interests of the person
seeking help. A socks proxy for mai
On Tue, Aug 27, 2024 at 07:05:32PM +0800, hello--- via Postfix-users wrote:
> Hello community,
>
> My postfix has got this log:
>
> Aug 27 16:49:04 linuxmail postfix/smtpd[34640]: warning: restriction
> `reject_authenticated_sender_login_mismatch' ignored: no SASL support
> Aug 27 16:49:04 linuxm
On Tue, Aug 27, 2024 at 07:47:18PM +0800, LinuxMail.cc via Postfix-users wrote:
> Do you mean that, I should put that option in master.cf and the config
> should be like:
>
> smtps inet n - y - - smtpd
> -o syslog_name=postfix/smtps
> -o smtpd_sender_login_m
On Wed, Aug 28, 2024 at 06:22:27AM +0800, LinuxMail.cc via Postfix-users wrote:
> Thank you so much for the help. Now I have resolved the issue. The logs show
> nothing that error for now.
>
> Aug 28 06:15:49 linuxmail postfix/smtpd[39646]: connect from
> mail-oo1-f65.google.com[209.85.161.65]
>
On Wed, Aug 28, 2024 at 01:04:54PM +0800, LinuxMail.cc via Postfix-users wrote:
> Today I found a strange event. when I used these options (defaut) for smtps,
> reject_sender_login_mismatch won't work.
>
> smtps inet n - y - - smtpd
> -o syslog_name=postfix/sm
On Wed, Aug 28, 2024 at 04:29:02PM +, Laura Smith via Postfix-users wrote:
> In its default configuration, Postfix
> makes /var/spool/postfix/public/qmgr world accessible whilst the
> parent directory /var/spool/postfix/public is not.
>
> This means that metric gathering is not able to connec
On Sat, Aug 31, 2024 at 07:59:04PM +0200, Ralph Seichter via Postfix-users
wrote:
> * Phil Stracchino via Postfix-users:
>
> > Don't know whether it's a Gentoo specific issue, but Postfix failed to
> > restart after update because the new lib directory was created as
> > /usr/lib64/postfix/3.9,
On Mon, Sep 02, 2024 at 04:08:35PM +, Laura Smith via Postfix-users wrote:
> Fair enough. Although the problem with no output is I've not no
> "schema" to go by when coding the JSON parser ?
A "censored" example:
$ postqueue -j | tail -n1 | jq -n 'fromstream(inputs|tostream|[.[0],
(.[1:
On Tue, Sep 03, 2024 at 02:55:11AM +1000, Viktor Dukhovni via Postfix-users
wrote:
> A "censored" example:
>
> $ postqueue -j | tail -n1 | jq -n 'fromstream(inputs|tostream|[.[0],
> (.[1:][]|"foo")])'
> {
> "queue_name"
On Tue, Sep 03, 2024 at 10:12:57AM +0800, LinuxMail.cc via Postfix-users wrote:
> IIRC for the group of IPs with the same weight,
> Postfix put them into a array with max size 8, and pick up one from the
> array by round robin.
Why guess?
https://www.postfix.org/postconf.5.html#smtp_mx_s
On Mon, Sep 02, 2024 at 01:14:47PM -0600, Glen via Postfix-users wrote:
> Problem:
>
> * Postfix does not start after a reboot.
> * systemctl start postfix ...Job for postfix.service failed because
>the control process exited with error code.
> * systemctl status -l postfix ... Failed
On Tue, Sep 03, 2024 at 02:01:20PM +1000, Viktor Dukhovni via Postfix-users
wrote:
> So in terms of connection policy, these behave the same:
>
>1. some.example. IN MX 0 mx.some.example.
> mx.some.example. IN 192.0.2.1
> mx.some.exampl
On Fri, Aug 30, 2024 at 03:49:33PM -0400, Wietse Venema via Postfix-users wrote:
> BDAT is different than other SMTP commands: the client sends a byte
> count for the amount of data that follows the command, and Postfix
> will not reply until it has received the number of bytes in the
> BDAT comma
On Wed, Sep 04, 2024 at 11:12:02AM +0530, Burn Zero via Postfix-users wrote:
> Is there any way to update the mynetworks file without doing a postfix
> restart? I use mynetworks cidr file.
The "long-running" services in Postfix are (on a fairly idle server):
# pstree -p $(pgrep -x master)
On Wed, Sep 04, 2024 at 06:45:03PM -0400, Wietse Venema via Postfix-users wrote:
> > why set smtpd_reject_unlisted_recipient=no here?
>
> Because this is an MUA service. Unlike an MTA, an MUA usually cannot
> send non-delivery notifications.
Not only that but the "user-experience" when submissio
On Thu, Sep 05, 2024 at 11:49:35AM +0530, Burn Zero wrote:
> Thank you Viktor. So I assume reloading postfix frequently (on a busy
> server) will not affect the email delivery.
Actually, it would be quite bad, because one of the internal services that
will restart each time will be the queue mana
On Thu, Sep 05, 2024 at 01:56:51PM +0200, Thomas Mörbauer via Postfix-users
wrote:
> When sending a mail with a folded message-id header ... then the
> message-id is ignored with the log message: "ignoring malformed
> Message-ID".
There really SHOULD NOT be any folding whitespace in the middle
On Thu, Sep 05, 2024 at 02:21:13PM +0200, Thomas Mörbauer via Postfix-users
wrote:
> For example
> Message-ID:
>
> would not be written into the In-Reply-To.
> So a simple crlf with space.
That's rather different than what you appeared to say. Here there's
folding whitespace *before* (not in t
On Sat, Sep 07, 2024 at 03:22:21PM +0200, hostmaster--- via Postfix-users wrote:
> So I set smtpd_tls_security_level = encrypt. However, with encrypt,
> all connection attempts fails, also those that have upgraded to TLS
> when smtpd_tls_security_level was set to may.
>
> I did a tcpdump and fou
On Sun, Sep 08, 2024 at 01:36:39AM +0200, hostmaster--- via Postfix-users wrote:
>
> smtp inet n - - - - smtpd
> -o smtpd_tls_security_level=encrypt
I thought you were using postscreen? This is smtpd(8) listening
directly on port 25. For use postscreen, yo
On Mon, Sep 09, 2024 at 05:14:07PM +0200, Håkon Alstadheim via Postfix-users
wrote:
> I got the attached report about a double bounce from my incoming postfix
> server "Postfix SMTP server: errors from
> nullbounce.com[116.202.14.127]:57394".
This wasn't a double-bounce, just an invalid SMTP rec
On Tue, Sep 10, 2024 at 01:44:39PM +0200, Anton Hofland via Postfix-users wrote:
> I have this milter that sits on a server which is not directly
> connected to the internet. Instead there is an internet facing firewall
> mail server in front of it which has all the usual defences. There are
> many
On Fri, Sep 13, 2024 at 12:11:43AM +, Marcus Park via Postfix-users wrote:
> I have two domains in my system, say they are a.com and b.com
> I want the sender (sasl user) in a.com to use postfix-a as outgoing mta.
> and b.com uses postfix-b as outgoing server.
>
> How can I implement this? yo
On Fri, Sep 13, 2024 at 01:31:46AM +, Marcus Park wrote:
> I currently have 3 nodes as postfix servers.
> One is the main server which accepts messages from clients via submission.
> The main server routes messages out via another postfix (a or b) by the
> setting of relay_host.
> For now I w
On Fri, Sep 13, 2024 at 10:29:21AM -0500, Dan Lists via Postfix-users wrote:
> I have a small email relay server that is used to allow IOT devices to send
> email. Some of those devices do not do authentication. I'd like to
> restrict the sender domain based on the IP.
How many distinct sender
On Mon, Sep 16, 2024 at 09:55:22AM -0500, Dan Lists via Postfix-users wrote:
> > How many distinct sender domains are in scope? If it is just a small
> > handful, you can restriction classes:
> >
> > main.cf:
> > smtpd_restriction_classes =
> > require_sender_domain_a,
> >
601 - 700 of 1061 matches
Mail list logo
